1*a71a9546SAutomerger Merge Worker /*
2*a71a9546SAutomerger Merge Worker * libxt_time - iptables part for xt_time
3*a71a9546SAutomerger Merge Worker * Copyright © CC Computer Consultants GmbH, 2007
4*a71a9546SAutomerger Merge Worker * Contact: <[email protected]>
5*a71a9546SAutomerger Merge Worker *
6*a71a9546SAutomerger Merge Worker * libxt_time.c is free software; you can redistribute it and/or modify
7*a71a9546SAutomerger Merge Worker * it under the terms of the GNU General Public License as published by
8*a71a9546SAutomerger Merge Worker * the Free Software Foundation; either version 2 or 3 of the License.
9*a71a9546SAutomerger Merge Worker *
10*a71a9546SAutomerger Merge Worker * Based on libipt_time.c.
11*a71a9546SAutomerger Merge Worker */
12*a71a9546SAutomerger Merge Worker #include <stdio.h>
13*a71a9546SAutomerger Merge Worker #include <string.h>
14*a71a9546SAutomerger Merge Worker #include <stdlib.h>
15*a71a9546SAutomerger Merge Worker #include <time.h>
16*a71a9546SAutomerger Merge Worker #include <linux/types.h>
17*a71a9546SAutomerger Merge Worker #include <linux/netfilter/xt_time.h>
18*a71a9546SAutomerger Merge Worker #include <xtables.h>
19*a71a9546SAutomerger Merge Worker
20*a71a9546SAutomerger Merge Worker enum {
21*a71a9546SAutomerger Merge Worker O_DATE_START = 0,
22*a71a9546SAutomerger Merge Worker O_DATE_STOP,
23*a71a9546SAutomerger Merge Worker O_TIME_START,
24*a71a9546SAutomerger Merge Worker O_TIME_STOP,
25*a71a9546SAutomerger Merge Worker O_TIME_CONTIGUOUS,
26*a71a9546SAutomerger Merge Worker O_MONTHDAYS,
27*a71a9546SAutomerger Merge Worker O_WEEKDAYS,
28*a71a9546SAutomerger Merge Worker O_LOCAL_TZ,
29*a71a9546SAutomerger Merge Worker O_UTC,
30*a71a9546SAutomerger Merge Worker O_KERNEL_TZ,
31*a71a9546SAutomerger Merge Worker F_LOCAL_TZ = 1 << O_LOCAL_TZ,
32*a71a9546SAutomerger Merge Worker F_UTC = 1 << O_UTC,
33*a71a9546SAutomerger Merge Worker F_KERNEL_TZ = 1 << O_KERNEL_TZ,
34*a71a9546SAutomerger Merge Worker F_TIME_CONTIGUOUS = 1 << O_TIME_CONTIGUOUS,
35*a71a9546SAutomerger Merge Worker };
36*a71a9546SAutomerger Merge Worker
37*a71a9546SAutomerger Merge Worker static const char *const week_days[] = {
38*a71a9546SAutomerger Merge Worker NULL, "Mon", "Tue", "Wed", "Thu", "Fri", "Sat", "Sun",
39*a71a9546SAutomerger Merge Worker };
40*a71a9546SAutomerger Merge Worker
41*a71a9546SAutomerger Merge Worker static const struct xt_option_entry time_opts[] = {
42*a71a9546SAutomerger Merge Worker {.name = "datestart", .id = O_DATE_START, .type = XTTYPE_STRING},
43*a71a9546SAutomerger Merge Worker {.name = "datestop", .id = O_DATE_STOP, .type = XTTYPE_STRING},
44*a71a9546SAutomerger Merge Worker {.name = "timestart", .id = O_TIME_START, .type = XTTYPE_STRING},
45*a71a9546SAutomerger Merge Worker {.name = "timestop", .id = O_TIME_STOP, .type = XTTYPE_STRING},
46*a71a9546SAutomerger Merge Worker {.name = "contiguous", .id = O_TIME_CONTIGUOUS, .type = XTTYPE_NONE},
47*a71a9546SAutomerger Merge Worker {.name = "weekdays", .id = O_WEEKDAYS, .type = XTTYPE_STRING,
48*a71a9546SAutomerger Merge Worker .flags = XTOPT_INVERT},
49*a71a9546SAutomerger Merge Worker {.name = "monthdays", .id = O_MONTHDAYS, .type = XTTYPE_STRING,
50*a71a9546SAutomerger Merge Worker .flags = XTOPT_INVERT},
51*a71a9546SAutomerger Merge Worker {.name = "localtz", .id = O_LOCAL_TZ, .type = XTTYPE_NONE,
52*a71a9546SAutomerger Merge Worker .excl = F_UTC},
53*a71a9546SAutomerger Merge Worker {.name = "utc", .id = O_UTC, .type = XTTYPE_NONE,
54*a71a9546SAutomerger Merge Worker .excl = F_LOCAL_TZ | F_KERNEL_TZ},
55*a71a9546SAutomerger Merge Worker {.name = "kerneltz", .id = O_KERNEL_TZ, .type = XTTYPE_NONE,
56*a71a9546SAutomerger Merge Worker .excl = F_UTC},
57*a71a9546SAutomerger Merge Worker XTOPT_TABLEEND,
58*a71a9546SAutomerger Merge Worker };
59*a71a9546SAutomerger Merge Worker
time_help(void)60*a71a9546SAutomerger Merge Worker static void time_help(void)
61*a71a9546SAutomerger Merge Worker {
62*a71a9546SAutomerger Merge Worker printf(
63*a71a9546SAutomerger Merge Worker "time match options:\n"
64*a71a9546SAutomerger Merge Worker " --datestart time Start and stop time, to be given in ISO 8601\n"
65*a71a9546SAutomerger Merge Worker " --datestop time (YYYY[-MM[-DD[Thh[:mm[:ss]]]]])\n"
66*a71a9546SAutomerger Merge Worker " --timestart time Start and stop daytime (hh:mm[:ss])\n"
67*a71a9546SAutomerger Merge Worker " --timestop time (between 00:00:00 and 23:59:59)\n"
68*a71a9546SAutomerger Merge Worker "[!] --monthdays value List of days on which to match, separated by comma\n"
69*a71a9546SAutomerger Merge Worker " (Possible days: 1 to 31; defaults to all)\n"
70*a71a9546SAutomerger Merge Worker "[!] --weekdays value List of weekdays on which to match, sep. by comma\n"
71*a71a9546SAutomerger Merge Worker " (Possible days: Mon,Tue,Wed,Thu,Fri,Sat,Sun or 1 to 7\n"
72*a71a9546SAutomerger Merge Worker " Defaults to all weekdays.)\n"
73*a71a9546SAutomerger Merge Worker " --kerneltz Work with the kernel timezone instead of UTC\n");
74*a71a9546SAutomerger Merge Worker }
75*a71a9546SAutomerger Merge Worker
time_init(struct xt_entry_match * m)76*a71a9546SAutomerger Merge Worker static void time_init(struct xt_entry_match *m)
77*a71a9546SAutomerger Merge Worker {
78*a71a9546SAutomerger Merge Worker struct xt_time_info *info = (void *)m->data;
79*a71a9546SAutomerger Merge Worker
80*a71a9546SAutomerger Merge Worker /* By default, we match on every day, every daytime */
81*a71a9546SAutomerger Merge Worker info->monthdays_match = XT_TIME_ALL_MONTHDAYS;
82*a71a9546SAutomerger Merge Worker info->weekdays_match = XT_TIME_ALL_WEEKDAYS;
83*a71a9546SAutomerger Merge Worker info->daytime_start = XT_TIME_MIN_DAYTIME;
84*a71a9546SAutomerger Merge Worker info->daytime_stop = XT_TIME_MAX_DAYTIME;
85*a71a9546SAutomerger Merge Worker
86*a71a9546SAutomerger Merge Worker /* ...and have no date-begin or date-end boundary */
87*a71a9546SAutomerger Merge Worker info->date_start = 0;
88*a71a9546SAutomerger Merge Worker info->date_stop = INT_MAX;
89*a71a9546SAutomerger Merge Worker }
90*a71a9546SAutomerger Merge Worker
time_parse_date(const char * s)91*a71a9546SAutomerger Merge Worker static time_t time_parse_date(const char *s)
92*a71a9546SAutomerger Merge Worker {
93*a71a9546SAutomerger Merge Worker unsigned int month = 1, day = 1, hour = 0, minute = 0, second = 0;
94*a71a9546SAutomerger Merge Worker unsigned int year;
95*a71a9546SAutomerger Merge Worker const char *os = s;
96*a71a9546SAutomerger Merge Worker struct tm tm;
97*a71a9546SAutomerger Merge Worker time_t ret;
98*a71a9546SAutomerger Merge Worker char *e;
99*a71a9546SAutomerger Merge Worker
100*a71a9546SAutomerger Merge Worker year = strtoul(s, &e, 10);
101*a71a9546SAutomerger Merge Worker if ((*e != '-' && *e != '\0') || year < 1970 || year > 2038)
102*a71a9546SAutomerger Merge Worker goto out;
103*a71a9546SAutomerger Merge Worker if (*e == '\0')
104*a71a9546SAutomerger Merge Worker goto eval;
105*a71a9546SAutomerger Merge Worker
106*a71a9546SAutomerger Merge Worker s = e + 1;
107*a71a9546SAutomerger Merge Worker month = strtoul(s, &e, 10);
108*a71a9546SAutomerger Merge Worker if ((*e != '-' && *e != '\0') || month > 12)
109*a71a9546SAutomerger Merge Worker goto out;
110*a71a9546SAutomerger Merge Worker if (*e == '\0')
111*a71a9546SAutomerger Merge Worker goto eval;
112*a71a9546SAutomerger Merge Worker
113*a71a9546SAutomerger Merge Worker s = e + 1;
114*a71a9546SAutomerger Merge Worker day = strtoul(s, &e, 10);
115*a71a9546SAutomerger Merge Worker if ((*e != 'T' && *e != '\0') || day > 31)
116*a71a9546SAutomerger Merge Worker goto out;
117*a71a9546SAutomerger Merge Worker if (*e == '\0')
118*a71a9546SAutomerger Merge Worker goto eval;
119*a71a9546SAutomerger Merge Worker
120*a71a9546SAutomerger Merge Worker s = e + 1;
121*a71a9546SAutomerger Merge Worker hour = strtoul(s, &e, 10);
122*a71a9546SAutomerger Merge Worker if ((*e != ':' && *e != '\0') || hour > 23)
123*a71a9546SAutomerger Merge Worker goto out;
124*a71a9546SAutomerger Merge Worker if (*e == '\0')
125*a71a9546SAutomerger Merge Worker goto eval;
126*a71a9546SAutomerger Merge Worker
127*a71a9546SAutomerger Merge Worker s = e + 1;
128*a71a9546SAutomerger Merge Worker minute = strtoul(s, &e, 10);
129*a71a9546SAutomerger Merge Worker if ((*e != ':' && *e != '\0') || minute > 59)
130*a71a9546SAutomerger Merge Worker goto out;
131*a71a9546SAutomerger Merge Worker if (*e == '\0')
132*a71a9546SAutomerger Merge Worker goto eval;
133*a71a9546SAutomerger Merge Worker
134*a71a9546SAutomerger Merge Worker s = e + 1;
135*a71a9546SAutomerger Merge Worker second = strtoul(s, &e, 10);
136*a71a9546SAutomerger Merge Worker if (*e != '\0' || second > 59)
137*a71a9546SAutomerger Merge Worker goto out;
138*a71a9546SAutomerger Merge Worker
139*a71a9546SAutomerger Merge Worker eval:
140*a71a9546SAutomerger Merge Worker tm.tm_year = year - 1900;
141*a71a9546SAutomerger Merge Worker tm.tm_mon = month - 1;
142*a71a9546SAutomerger Merge Worker tm.tm_mday = day;
143*a71a9546SAutomerger Merge Worker tm.tm_hour = hour;
144*a71a9546SAutomerger Merge Worker tm.tm_min = minute;
145*a71a9546SAutomerger Merge Worker tm.tm_sec = second;
146*a71a9546SAutomerger Merge Worker tm.tm_isdst = 0;
147*a71a9546SAutomerger Merge Worker /*
148*a71a9546SAutomerger Merge Worker * Offsetting, if any, is done by xt_time.ko,
149*a71a9546SAutomerger Merge Worker * so we have to disable it here in userspace.
150*a71a9546SAutomerger Merge Worker */
151*a71a9546SAutomerger Merge Worker setenv("TZ", "UTC", true);
152*a71a9546SAutomerger Merge Worker tzset();
153*a71a9546SAutomerger Merge Worker ret = mktime(&tm);
154*a71a9546SAutomerger Merge Worker if (ret >= 0)
155*a71a9546SAutomerger Merge Worker return ret;
156*a71a9546SAutomerger Merge Worker perror("mktime");
157*a71a9546SAutomerger Merge Worker xtables_error(OTHER_PROBLEM, "mktime returned an error");
158*a71a9546SAutomerger Merge Worker
159*a71a9546SAutomerger Merge Worker out:
160*a71a9546SAutomerger Merge Worker xtables_error(PARAMETER_PROBLEM, "Invalid date \"%s\" specified. Should "
161*a71a9546SAutomerger Merge Worker "be YYYY[-MM[-DD[Thh[:mm[:ss]]]]]", os);
162*a71a9546SAutomerger Merge Worker return -1;
163*a71a9546SAutomerger Merge Worker }
164*a71a9546SAutomerger Merge Worker
time_parse_minutes(const char * s)165*a71a9546SAutomerger Merge Worker static unsigned int time_parse_minutes(const char *s)
166*a71a9546SAutomerger Merge Worker {
167*a71a9546SAutomerger Merge Worker unsigned int hour, minute, second = 0;
168*a71a9546SAutomerger Merge Worker char *e;
169*a71a9546SAutomerger Merge Worker
170*a71a9546SAutomerger Merge Worker hour = strtoul(s, &e, 10);
171*a71a9546SAutomerger Merge Worker if (*e != ':' || hour > 23)
172*a71a9546SAutomerger Merge Worker goto out;
173*a71a9546SAutomerger Merge Worker
174*a71a9546SAutomerger Merge Worker s = e + 1;
175*a71a9546SAutomerger Merge Worker minute = strtoul(s, &e, 10);
176*a71a9546SAutomerger Merge Worker if ((*e != ':' && *e != '\0') || minute > 59)
177*a71a9546SAutomerger Merge Worker goto out;
178*a71a9546SAutomerger Merge Worker if (*e == '\0')
179*a71a9546SAutomerger Merge Worker goto eval;
180*a71a9546SAutomerger Merge Worker
181*a71a9546SAutomerger Merge Worker s = e + 1;
182*a71a9546SAutomerger Merge Worker second = strtoul(s, &e, 10);
183*a71a9546SAutomerger Merge Worker if (*e != '\0' || second > 59)
184*a71a9546SAutomerger Merge Worker goto out;
185*a71a9546SAutomerger Merge Worker
186*a71a9546SAutomerger Merge Worker eval:
187*a71a9546SAutomerger Merge Worker return 60 * 60 * hour + 60 * minute + second;
188*a71a9546SAutomerger Merge Worker
189*a71a9546SAutomerger Merge Worker out:
190*a71a9546SAutomerger Merge Worker xtables_error(PARAMETER_PROBLEM, "invalid time \"%s\" specified, "
191*a71a9546SAutomerger Merge Worker "should be hh:mm[:ss] format and within the boundaries", s);
192*a71a9546SAutomerger Merge Worker return -1;
193*a71a9546SAutomerger Merge Worker }
194*a71a9546SAutomerger Merge Worker
my_strseg(char * buf,unsigned int buflen,const char ** arg,char delim)195*a71a9546SAutomerger Merge Worker static const char *my_strseg(char *buf, unsigned int buflen,
196*a71a9546SAutomerger Merge Worker const char **arg, char delim)
197*a71a9546SAutomerger Merge Worker {
198*a71a9546SAutomerger Merge Worker const char *sep;
199*a71a9546SAutomerger Merge Worker
200*a71a9546SAutomerger Merge Worker if (*arg == NULL || **arg == '\0')
201*a71a9546SAutomerger Merge Worker return NULL;
202*a71a9546SAutomerger Merge Worker sep = strchr(*arg, delim);
203*a71a9546SAutomerger Merge Worker if (sep == NULL) {
204*a71a9546SAutomerger Merge Worker snprintf(buf, buflen, "%s", *arg);
205*a71a9546SAutomerger Merge Worker *arg = NULL;
206*a71a9546SAutomerger Merge Worker return buf;
207*a71a9546SAutomerger Merge Worker }
208*a71a9546SAutomerger Merge Worker snprintf(buf, buflen, "%.*s", (unsigned int)(sep - *arg), *arg);
209*a71a9546SAutomerger Merge Worker *arg = sep + 1;
210*a71a9546SAutomerger Merge Worker return buf;
211*a71a9546SAutomerger Merge Worker }
212*a71a9546SAutomerger Merge Worker
time_parse_monthdays(const char * arg)213*a71a9546SAutomerger Merge Worker static uint32_t time_parse_monthdays(const char *arg)
214*a71a9546SAutomerger Merge Worker {
215*a71a9546SAutomerger Merge Worker char day[3], *err = NULL;
216*a71a9546SAutomerger Merge Worker uint32_t ret = 0;
217*a71a9546SAutomerger Merge Worker unsigned int i;
218*a71a9546SAutomerger Merge Worker
219*a71a9546SAutomerger Merge Worker while (my_strseg(day, sizeof(day), &arg, ',') != NULL) {
220*a71a9546SAutomerger Merge Worker i = strtoul(day, &err, 0);
221*a71a9546SAutomerger Merge Worker if ((*err != ',' && *err != '\0') || i > 31)
222*a71a9546SAutomerger Merge Worker xtables_error(PARAMETER_PROBLEM,
223*a71a9546SAutomerger Merge Worker "%s is not a valid day for --monthdays", day);
224*a71a9546SAutomerger Merge Worker ret |= 1 << i;
225*a71a9546SAutomerger Merge Worker }
226*a71a9546SAutomerger Merge Worker
227*a71a9546SAutomerger Merge Worker return ret;
228*a71a9546SAutomerger Merge Worker }
229*a71a9546SAutomerger Merge Worker
time_parse_weekdays(const char * arg)230*a71a9546SAutomerger Merge Worker static unsigned int time_parse_weekdays(const char *arg)
231*a71a9546SAutomerger Merge Worker {
232*a71a9546SAutomerger Merge Worker char day[4], *err = NULL;
233*a71a9546SAutomerger Merge Worker unsigned int i, ret = 0;
234*a71a9546SAutomerger Merge Worker bool valid;
235*a71a9546SAutomerger Merge Worker
236*a71a9546SAutomerger Merge Worker while (my_strseg(day, sizeof(day), &arg, ',') != NULL) {
237*a71a9546SAutomerger Merge Worker i = strtoul(day, &err, 0);
238*a71a9546SAutomerger Merge Worker if (*err == '\0') {
239*a71a9546SAutomerger Merge Worker if (i == 0)
240*a71a9546SAutomerger Merge Worker xtables_error(PARAMETER_PROBLEM,
241*a71a9546SAutomerger Merge Worker "No, the week does NOT begin with Sunday.");
242*a71a9546SAutomerger Merge Worker ret |= 1 << i;
243*a71a9546SAutomerger Merge Worker continue;
244*a71a9546SAutomerger Merge Worker }
245*a71a9546SAutomerger Merge Worker
246*a71a9546SAutomerger Merge Worker valid = false;
247*a71a9546SAutomerger Merge Worker for (i = 1; i < ARRAY_SIZE(week_days); ++i)
248*a71a9546SAutomerger Merge Worker if (strncmp(day, week_days[i], 2) == 0) {
249*a71a9546SAutomerger Merge Worker ret |= 1 << i;
250*a71a9546SAutomerger Merge Worker valid = true;
251*a71a9546SAutomerger Merge Worker }
252*a71a9546SAutomerger Merge Worker
253*a71a9546SAutomerger Merge Worker if (!valid)
254*a71a9546SAutomerger Merge Worker xtables_error(PARAMETER_PROBLEM,
255*a71a9546SAutomerger Merge Worker "%s is not a valid day specifier", day);
256*a71a9546SAutomerger Merge Worker }
257*a71a9546SAutomerger Merge Worker
258*a71a9546SAutomerger Merge Worker return ret;
259*a71a9546SAutomerger Merge Worker }
260*a71a9546SAutomerger Merge Worker
time_count_weekdays(unsigned int weekdays_mask)261*a71a9546SAutomerger Merge Worker static unsigned int time_count_weekdays(unsigned int weekdays_mask)
262*a71a9546SAutomerger Merge Worker {
263*a71a9546SAutomerger Merge Worker unsigned int ret;
264*a71a9546SAutomerger Merge Worker
265*a71a9546SAutomerger Merge Worker for (ret = 0; weekdays_mask; weekdays_mask >>= 1)
266*a71a9546SAutomerger Merge Worker ret += weekdays_mask & 1;
267*a71a9546SAutomerger Merge Worker
268*a71a9546SAutomerger Merge Worker return ret;
269*a71a9546SAutomerger Merge Worker }
270*a71a9546SAutomerger Merge Worker
time_parse(struct xt_option_call * cb)271*a71a9546SAutomerger Merge Worker static void time_parse(struct xt_option_call *cb)
272*a71a9546SAutomerger Merge Worker {
273*a71a9546SAutomerger Merge Worker struct xt_time_info *info = cb->data;
274*a71a9546SAutomerger Merge Worker
275*a71a9546SAutomerger Merge Worker xtables_option_parse(cb);
276*a71a9546SAutomerger Merge Worker switch (cb->entry->id) {
277*a71a9546SAutomerger Merge Worker case O_DATE_START:
278*a71a9546SAutomerger Merge Worker info->date_start = time_parse_date(cb->arg);
279*a71a9546SAutomerger Merge Worker break;
280*a71a9546SAutomerger Merge Worker case O_DATE_STOP:
281*a71a9546SAutomerger Merge Worker info->date_stop = time_parse_date(cb->arg);
282*a71a9546SAutomerger Merge Worker break;
283*a71a9546SAutomerger Merge Worker case O_TIME_START:
284*a71a9546SAutomerger Merge Worker info->daytime_start = time_parse_minutes(cb->arg);
285*a71a9546SAutomerger Merge Worker break;
286*a71a9546SAutomerger Merge Worker case O_TIME_STOP:
287*a71a9546SAutomerger Merge Worker info->daytime_stop = time_parse_minutes(cb->arg);
288*a71a9546SAutomerger Merge Worker break;
289*a71a9546SAutomerger Merge Worker case O_TIME_CONTIGUOUS:
290*a71a9546SAutomerger Merge Worker info->flags |= XT_TIME_CONTIGUOUS;
291*a71a9546SAutomerger Merge Worker break;
292*a71a9546SAutomerger Merge Worker case O_LOCAL_TZ:
293*a71a9546SAutomerger Merge Worker fprintf(stderr, "WARNING: --localtz is being replaced by "
294*a71a9546SAutomerger Merge Worker "--kerneltz, since \"local\" is ambiguous. Note the "
295*a71a9546SAutomerger Merge Worker "kernel timezone has caveats - "
296*a71a9546SAutomerger Merge Worker "see manpage for details.\n");
297*a71a9546SAutomerger Merge Worker /* fallthrough */
298*a71a9546SAutomerger Merge Worker case O_KERNEL_TZ:
299*a71a9546SAutomerger Merge Worker info->flags |= XT_TIME_LOCAL_TZ;
300*a71a9546SAutomerger Merge Worker break;
301*a71a9546SAutomerger Merge Worker case O_MONTHDAYS:
302*a71a9546SAutomerger Merge Worker info->monthdays_match = time_parse_monthdays(cb->arg);
303*a71a9546SAutomerger Merge Worker if (cb->invert)
304*a71a9546SAutomerger Merge Worker info->monthdays_match ^= XT_TIME_ALL_MONTHDAYS;
305*a71a9546SAutomerger Merge Worker break;
306*a71a9546SAutomerger Merge Worker case O_WEEKDAYS:
307*a71a9546SAutomerger Merge Worker info->weekdays_match = time_parse_weekdays(cb->arg);
308*a71a9546SAutomerger Merge Worker if (cb->invert)
309*a71a9546SAutomerger Merge Worker info->weekdays_match ^= XT_TIME_ALL_WEEKDAYS;
310*a71a9546SAutomerger Merge Worker break;
311*a71a9546SAutomerger Merge Worker }
312*a71a9546SAutomerger Merge Worker }
313*a71a9546SAutomerger Merge Worker
time_print_date(time_t date,const char * command)314*a71a9546SAutomerger Merge Worker static void time_print_date(time_t date, const char *command)
315*a71a9546SAutomerger Merge Worker {
316*a71a9546SAutomerger Merge Worker struct tm *t;
317*a71a9546SAutomerger Merge Worker
318*a71a9546SAutomerger Merge Worker /* If it is the default value, do not print it. */
319*a71a9546SAutomerger Merge Worker if (date == 0 || date == LONG_MAX)
320*a71a9546SAutomerger Merge Worker return;
321*a71a9546SAutomerger Merge Worker
322*a71a9546SAutomerger Merge Worker t = gmtime(&date);
323*a71a9546SAutomerger Merge Worker if (command != NULL)
324*a71a9546SAutomerger Merge Worker /*
325*a71a9546SAutomerger Merge Worker * Need a contiguous string (no whitespaces), hence using
326*a71a9546SAutomerger Merge Worker * the ISO 8601 "T" variant.
327*a71a9546SAutomerger Merge Worker */
328*a71a9546SAutomerger Merge Worker printf(" %s %04u-%02u-%02uT%02u:%02u:%02u",
329*a71a9546SAutomerger Merge Worker command, t->tm_year + 1900, t->tm_mon + 1,
330*a71a9546SAutomerger Merge Worker t->tm_mday, t->tm_hour, t->tm_min, t->tm_sec);
331*a71a9546SAutomerger Merge Worker else
332*a71a9546SAutomerger Merge Worker printf(" %04u-%02u-%02u %02u:%02u:%02u",
333*a71a9546SAutomerger Merge Worker t->tm_year + 1900, t->tm_mon + 1, t->tm_mday,
334*a71a9546SAutomerger Merge Worker t->tm_hour, t->tm_min, t->tm_sec);
335*a71a9546SAutomerger Merge Worker }
336*a71a9546SAutomerger Merge Worker
time_print_monthdays(uint32_t mask,bool human_readable)337*a71a9546SAutomerger Merge Worker static void time_print_monthdays(uint32_t mask, bool human_readable)
338*a71a9546SAutomerger Merge Worker {
339*a71a9546SAutomerger Merge Worker unsigned int i, nbdays = 0;
340*a71a9546SAutomerger Merge Worker
341*a71a9546SAutomerger Merge Worker printf(" ");
342*a71a9546SAutomerger Merge Worker for (i = 1; i <= 31; ++i)
343*a71a9546SAutomerger Merge Worker if (mask & (1u << i)) {
344*a71a9546SAutomerger Merge Worker if (nbdays++ > 0)
345*a71a9546SAutomerger Merge Worker printf(",");
346*a71a9546SAutomerger Merge Worker printf("%u", i);
347*a71a9546SAutomerger Merge Worker if (human_readable)
348*a71a9546SAutomerger Merge Worker switch (i % 10) {
349*a71a9546SAutomerger Merge Worker case 1:
350*a71a9546SAutomerger Merge Worker printf("st");
351*a71a9546SAutomerger Merge Worker break;
352*a71a9546SAutomerger Merge Worker case 2:
353*a71a9546SAutomerger Merge Worker printf("nd");
354*a71a9546SAutomerger Merge Worker break;
355*a71a9546SAutomerger Merge Worker case 3:
356*a71a9546SAutomerger Merge Worker printf("rd");
357*a71a9546SAutomerger Merge Worker break;
358*a71a9546SAutomerger Merge Worker default:
359*a71a9546SAutomerger Merge Worker printf("th");
360*a71a9546SAutomerger Merge Worker break;
361*a71a9546SAutomerger Merge Worker }
362*a71a9546SAutomerger Merge Worker }
363*a71a9546SAutomerger Merge Worker }
364*a71a9546SAutomerger Merge Worker
time_print_weekdays(unsigned int mask)365*a71a9546SAutomerger Merge Worker static void time_print_weekdays(unsigned int mask)
366*a71a9546SAutomerger Merge Worker {
367*a71a9546SAutomerger Merge Worker unsigned int i, nbdays = 0;
368*a71a9546SAutomerger Merge Worker
369*a71a9546SAutomerger Merge Worker printf(" ");
370*a71a9546SAutomerger Merge Worker for (i = 1; i <= 7; ++i)
371*a71a9546SAutomerger Merge Worker if (mask & (1 << i)) {
372*a71a9546SAutomerger Merge Worker if (nbdays > 0)
373*a71a9546SAutomerger Merge Worker printf(",%s", week_days[i]);
374*a71a9546SAutomerger Merge Worker else
375*a71a9546SAutomerger Merge Worker printf("%s", week_days[i]);
376*a71a9546SAutomerger Merge Worker ++nbdays;
377*a71a9546SAutomerger Merge Worker }
378*a71a9546SAutomerger Merge Worker }
379*a71a9546SAutomerger Merge Worker
divide_time(unsigned int fulltime,unsigned int * hours,unsigned int * minutes,unsigned int * seconds)380*a71a9546SAutomerger Merge Worker static inline void divide_time(unsigned int fulltime, unsigned int *hours,
381*a71a9546SAutomerger Merge Worker unsigned int *minutes, unsigned int *seconds)
382*a71a9546SAutomerger Merge Worker {
383*a71a9546SAutomerger Merge Worker *seconds = fulltime % 60;
384*a71a9546SAutomerger Merge Worker fulltime /= 60;
385*a71a9546SAutomerger Merge Worker *minutes = fulltime % 60;
386*a71a9546SAutomerger Merge Worker *hours = fulltime / 60;
387*a71a9546SAutomerger Merge Worker }
388*a71a9546SAutomerger Merge Worker
time_print(const void * ip,const struct xt_entry_match * match,int numeric)389*a71a9546SAutomerger Merge Worker static void time_print(const void *ip, const struct xt_entry_match *match,
390*a71a9546SAutomerger Merge Worker int numeric)
391*a71a9546SAutomerger Merge Worker {
392*a71a9546SAutomerger Merge Worker const struct xt_time_info *info = (const void *)match->data;
393*a71a9546SAutomerger Merge Worker unsigned int h, m, s;
394*a71a9546SAutomerger Merge Worker
395*a71a9546SAutomerger Merge Worker printf(" TIME");
396*a71a9546SAutomerger Merge Worker
397*a71a9546SAutomerger Merge Worker if (info->daytime_start != XT_TIME_MIN_DAYTIME ||
398*a71a9546SAutomerger Merge Worker info->daytime_stop != XT_TIME_MAX_DAYTIME) {
399*a71a9546SAutomerger Merge Worker divide_time(info->daytime_start, &h, &m, &s);
400*a71a9546SAutomerger Merge Worker printf(" from %02u:%02u:%02u", h, m, s);
401*a71a9546SAutomerger Merge Worker divide_time(info->daytime_stop, &h, &m, &s);
402*a71a9546SAutomerger Merge Worker printf(" to %02u:%02u:%02u", h, m, s);
403*a71a9546SAutomerger Merge Worker }
404*a71a9546SAutomerger Merge Worker if (info->weekdays_match != XT_TIME_ALL_WEEKDAYS) {
405*a71a9546SAutomerger Merge Worker printf(" on");
406*a71a9546SAutomerger Merge Worker time_print_weekdays(info->weekdays_match);
407*a71a9546SAutomerger Merge Worker }
408*a71a9546SAutomerger Merge Worker if (info->monthdays_match != XT_TIME_ALL_MONTHDAYS) {
409*a71a9546SAutomerger Merge Worker printf(" on");
410*a71a9546SAutomerger Merge Worker time_print_monthdays(info->monthdays_match, true);
411*a71a9546SAutomerger Merge Worker }
412*a71a9546SAutomerger Merge Worker if (info->date_start != 0) {
413*a71a9546SAutomerger Merge Worker printf(" starting from");
414*a71a9546SAutomerger Merge Worker time_print_date(info->date_start, NULL);
415*a71a9546SAutomerger Merge Worker }
416*a71a9546SAutomerger Merge Worker if (info->date_stop != INT_MAX) {
417*a71a9546SAutomerger Merge Worker printf(" until date");
418*a71a9546SAutomerger Merge Worker time_print_date(info->date_stop, NULL);
419*a71a9546SAutomerger Merge Worker }
420*a71a9546SAutomerger Merge Worker if (!(info->flags & XT_TIME_LOCAL_TZ))
421*a71a9546SAutomerger Merge Worker printf(" UTC");
422*a71a9546SAutomerger Merge Worker if (info->flags & XT_TIME_CONTIGUOUS)
423*a71a9546SAutomerger Merge Worker printf(" contiguous");
424*a71a9546SAutomerger Merge Worker }
425*a71a9546SAutomerger Merge Worker
time_save(const void * ip,const struct xt_entry_match * match)426*a71a9546SAutomerger Merge Worker static void time_save(const void *ip, const struct xt_entry_match *match)
427*a71a9546SAutomerger Merge Worker {
428*a71a9546SAutomerger Merge Worker const struct xt_time_info *info = (const void *)match->data;
429*a71a9546SAutomerger Merge Worker unsigned int h, m, s;
430*a71a9546SAutomerger Merge Worker
431*a71a9546SAutomerger Merge Worker if (info->daytime_start != XT_TIME_MIN_DAYTIME ||
432*a71a9546SAutomerger Merge Worker info->daytime_stop != XT_TIME_MAX_DAYTIME) {
433*a71a9546SAutomerger Merge Worker divide_time(info->daytime_start, &h, &m, &s);
434*a71a9546SAutomerger Merge Worker printf(" --timestart %02u:%02u:%02u", h, m, s);
435*a71a9546SAutomerger Merge Worker divide_time(info->daytime_stop, &h, &m, &s);
436*a71a9546SAutomerger Merge Worker printf(" --timestop %02u:%02u:%02u", h, m, s);
437*a71a9546SAutomerger Merge Worker }
438*a71a9546SAutomerger Merge Worker if (info->monthdays_match != XT_TIME_ALL_MONTHDAYS) {
439*a71a9546SAutomerger Merge Worker printf(" --monthdays");
440*a71a9546SAutomerger Merge Worker time_print_monthdays(info->monthdays_match, false);
441*a71a9546SAutomerger Merge Worker }
442*a71a9546SAutomerger Merge Worker if (info->weekdays_match != XT_TIME_ALL_WEEKDAYS) {
443*a71a9546SAutomerger Merge Worker printf(" --weekdays");
444*a71a9546SAutomerger Merge Worker time_print_weekdays(info->weekdays_match);
445*a71a9546SAutomerger Merge Worker }
446*a71a9546SAutomerger Merge Worker time_print_date(info->date_start, "--datestart");
447*a71a9546SAutomerger Merge Worker time_print_date(info->date_stop, "--datestop");
448*a71a9546SAutomerger Merge Worker if (info->flags & XT_TIME_LOCAL_TZ)
449*a71a9546SAutomerger Merge Worker printf(" --kerneltz");
450*a71a9546SAutomerger Merge Worker if (info->flags & XT_TIME_CONTIGUOUS)
451*a71a9546SAutomerger Merge Worker printf(" --contiguous");
452*a71a9546SAutomerger Merge Worker }
453*a71a9546SAutomerger Merge Worker
time_check(struct xt_fcheck_call * cb)454*a71a9546SAutomerger Merge Worker static void time_check(struct xt_fcheck_call *cb)
455*a71a9546SAutomerger Merge Worker {
456*a71a9546SAutomerger Merge Worker const struct xt_time_info *info = (const void *) cb->data;
457*a71a9546SAutomerger Merge Worker if ((cb->xflags & F_TIME_CONTIGUOUS) &&
458*a71a9546SAutomerger Merge Worker info->daytime_start < info->daytime_stop)
459*a71a9546SAutomerger Merge Worker xtables_error(PARAMETER_PROBLEM,
460*a71a9546SAutomerger Merge Worker "time: --contiguous only makes sense when stoptime is smaller than starttime");
461*a71a9546SAutomerger Merge Worker }
462*a71a9546SAutomerger Merge Worker
time_xlate(struct xt_xlate * xl,const struct xt_xlate_mt_params * params)463*a71a9546SAutomerger Merge Worker static int time_xlate(struct xt_xlate *xl,
464*a71a9546SAutomerger Merge Worker const struct xt_xlate_mt_params *params)
465*a71a9546SAutomerger Merge Worker {
466*a71a9546SAutomerger Merge Worker const struct xt_time_info *info =
467*a71a9546SAutomerger Merge Worker (const struct xt_time_info *)params->match->data;
468*a71a9546SAutomerger Merge Worker unsigned int h, m, s,
469*a71a9546SAutomerger Merge Worker i, mask, count;
470*a71a9546SAutomerger Merge Worker time_t tt_start, tt_stop;
471*a71a9546SAutomerger Merge Worker struct tm *t_start, *t_stop;
472*a71a9546SAutomerger Merge Worker const char *sep = "";
473*a71a9546SAutomerger Merge Worker
474*a71a9546SAutomerger Merge Worker if (info->date_start != 0 ||
475*a71a9546SAutomerger Merge Worker info->date_stop != INT_MAX) {
476*a71a9546SAutomerger Merge Worker tt_start = (time_t) info->date_start;
477*a71a9546SAutomerger Merge Worker tt_stop = (time_t) info->date_stop;
478*a71a9546SAutomerger Merge Worker
479*a71a9546SAutomerger Merge Worker xt_xlate_add(xl, "meta time ");
480*a71a9546SAutomerger Merge Worker t_start = gmtime(&tt_start);
481*a71a9546SAutomerger Merge Worker xt_xlate_add(xl, "\"%04u-%02u-%02u %02u:%02u:%02u\"",
482*a71a9546SAutomerger Merge Worker t_start->tm_year + 1900, t_start->tm_mon + 1,
483*a71a9546SAutomerger Merge Worker t_start->tm_mday, t_start->tm_hour,
484*a71a9546SAutomerger Merge Worker t_start->tm_min, t_start->tm_sec);
485*a71a9546SAutomerger Merge Worker t_stop = gmtime(&tt_stop);
486*a71a9546SAutomerger Merge Worker xt_xlate_add(xl, "-\"%04u-%02u-%02u %02u:%02u:%02u\"",
487*a71a9546SAutomerger Merge Worker t_stop->tm_year + 1900, t_stop->tm_mon + 1,
488*a71a9546SAutomerger Merge Worker t_stop->tm_mday, t_stop->tm_hour,
489*a71a9546SAutomerger Merge Worker t_stop->tm_min, t_stop->tm_sec);
490*a71a9546SAutomerger Merge Worker }
491*a71a9546SAutomerger Merge Worker if (info->daytime_start != XT_TIME_MIN_DAYTIME ||
492*a71a9546SAutomerger Merge Worker info->daytime_stop != XT_TIME_MAX_DAYTIME) {
493*a71a9546SAutomerger Merge Worker divide_time(info->daytime_start, &h, &m, &s);
494*a71a9546SAutomerger Merge Worker xt_xlate_add(xl, " meta hour \"%02u:%02u:%02u\"", h, m, s);
495*a71a9546SAutomerger Merge Worker divide_time(info->daytime_stop, &h, &m, &s);
496*a71a9546SAutomerger Merge Worker xt_xlate_add(xl, "-\"%02u:%02u:%02u\"", h, m, s);
497*a71a9546SAutomerger Merge Worker }
498*a71a9546SAutomerger Merge Worker /* nft_time does not support --monthdays */
499*a71a9546SAutomerger Merge Worker if (info->monthdays_match != XT_TIME_ALL_MONTHDAYS)
500*a71a9546SAutomerger Merge Worker return 0;
501*a71a9546SAutomerger Merge Worker if (info->weekdays_match != XT_TIME_ALL_WEEKDAYS) {
502*a71a9546SAutomerger Merge Worker mask = info->weekdays_match;
503*a71a9546SAutomerger Merge Worker count = time_count_weekdays(mask);
504*a71a9546SAutomerger Merge Worker
505*a71a9546SAutomerger Merge Worker xt_xlate_add(xl, " meta day ");
506*a71a9546SAutomerger Merge Worker if (count > 1)
507*a71a9546SAutomerger Merge Worker xt_xlate_add(xl, "{");
508*a71a9546SAutomerger Merge Worker for (i = 1; i <= 7; ++i)
509*a71a9546SAutomerger Merge Worker if (mask & (1 << i)) {
510*a71a9546SAutomerger Merge Worker xt_xlate_add(xl, "%s%u", sep, i%7);
511*a71a9546SAutomerger Merge Worker sep = ", ";
512*a71a9546SAutomerger Merge Worker }
513*a71a9546SAutomerger Merge Worker if (count > 1)
514*a71a9546SAutomerger Merge Worker xt_xlate_add(xl, "}");
515*a71a9546SAutomerger Merge Worker }
516*a71a9546SAutomerger Merge Worker
517*a71a9546SAutomerger Merge Worker return 1;
518*a71a9546SAutomerger Merge Worker }
519*a71a9546SAutomerger Merge Worker
520*a71a9546SAutomerger Merge Worker static struct xtables_match time_match = {
521*a71a9546SAutomerger Merge Worker .name = "time",
522*a71a9546SAutomerger Merge Worker .family = NFPROTO_UNSPEC,
523*a71a9546SAutomerger Merge Worker .version = XTABLES_VERSION,
524*a71a9546SAutomerger Merge Worker .size = XT_ALIGN(sizeof(struct xt_time_info)),
525*a71a9546SAutomerger Merge Worker .userspacesize = XT_ALIGN(sizeof(struct xt_time_info)),
526*a71a9546SAutomerger Merge Worker .help = time_help,
527*a71a9546SAutomerger Merge Worker .init = time_init,
528*a71a9546SAutomerger Merge Worker .print = time_print,
529*a71a9546SAutomerger Merge Worker .save = time_save,
530*a71a9546SAutomerger Merge Worker .x6_parse = time_parse,
531*a71a9546SAutomerger Merge Worker .x6_fcheck = time_check,
532*a71a9546SAutomerger Merge Worker .x6_options = time_opts,
533*a71a9546SAutomerger Merge Worker .xlate = time_xlate,
534*a71a9546SAutomerger Merge Worker };
535*a71a9546SAutomerger Merge Worker
_init(void)536*a71a9546SAutomerger Merge Worker void _init(void)
537*a71a9546SAutomerger Merge Worker {
538*a71a9546SAutomerger Merge Worker xtables_register_match(&time_match);
539*a71a9546SAutomerger Merge Worker }
540